TKEY (transaction key) is a record type of the

Domain Name System The Domain Name System (DNS) is a hierarchical and distributed naming system for computers, services, and other resources in the Internet or other Internet Protocol (IP) networks. It associates various information with domain names assigned to ...

. TKEY RRs can be used in a number of different modes to establish shared keys between a

DNS resolver The Domain Name System (DNS) is a hierarchical and distributed naming system for computers, services, and other resources in the Internet or other Internet Protocol (IP) networks. It associates various information with domain names assigned to ...

and

server Server may refer to: Computing *Server (computing), a computer program or a device that provides functionality for other programs or devices, called clients Role * Waiting staff, those who work at a restaurant or a bar attending customers and su ...

TKEY record format

Mode field values

* 0 - Reserved * 1 - Server assignment * 2 - Diffie-Hellman exchange * 3 -

Generic Security Service Algorithm for Secret Key Transaction GSS-TSIG (Generic Security Service Algorithm for Secret Key Transaction) is an extension to the TSIG DNS authentication protocol for secure key exchange. It is a GSS-API algorithm which uses Kerberos for passing security tokens to provide authent ...

* 4 - Resolver assignment * 5 - key deletion * 6–65534 - available * 65535 - reserved;

References

* , "Secret Key Establishment for DNS (TKEY RR)", D. Eastlake, September 2000 DNS record types {{Compu-domain-stub

TKEY record format

Mode field values

See also

References